I am trying to create a shell in Linux that controls how many simultaneous executions of something are allowed at once. For this, I use a system counting semaphore. I create a semaphore, do sem_wait() , start the child process, and then do sem_post() when the child finishes work. This is normal.
The problem is how to safely process signals sent to this shell. If he doesn’t catch the signals, the command can end without executing sem_post() , as a result of which the number of semaphores will constantly decrease by one. So, I created a signal handler that does sem_post() . But still there is a problem.
If the handler is connected before the execution of sem_wait() , the signal may come before the completion of sem_wait() , as a result of which sem_post() will occur without sem_wait() . Reverse is possible if I do sem_wait() before setting up the signal handler.
The obvious next step was to block the signals while setting up the handler and sem_wait() . This is the pseudocode of what I have now:
void handler(int sig) { sem_post(sem); exit(1); } ... sigprocmask(...); sigaction(...); sem_wait(sem); sigprocmask(...); RunChild(); sem_post(sem); exit(0);
Now the problem is that sem_wait() can be blocked, and during this time the signals are blocked. A user trying to kill a process may end up resorting to "kill -9," whose behavior I do not want to encourage, since I cannot handle this matter no matter what. I could use sem_trywait() for a little while and the sigpending() test, but this affects fairness because there is no longer any guarantee that the process waiting for the semaphore, the longest, will be launched further.
Is there a really safe solution that allows me to process signals while receiving a semaphore? I am considering using a global “global merge” and removing signal blocking, but this is not 100% safe, since getting a semaphore and setting a global one is not atomic, but may be better than blocking signals while waiting.